A proof of concept to dump Django website's source code affected by NGINX's off-by-slash alias directive misconfiguration.
☆24Dec 8, 2022Updated 3 years ago
Alternatives and similar repositories for offbyslash-django-dumper
Users that are interested in offbyslash-django-dumper are comparing it to the libraries listed below
Sorting:
- Intentionally Vulnerable Nodejs Application & APIs☆21Apr 9, 2022Updated 3 years ago
- NSA-Proof Secure P2P Chat client☆11Jul 15, 2015Updated 10 years ago
- Latest muhstik release (4.2.2)☆10Mar 25, 2014Updated 11 years ago
- Hackfest Talk - Abusing PHP 7’s OPcache to Spawn Webshells☆10Nov 6, 2016Updated 9 years ago
- ☆10Mar 29, 2022Updated 3 years ago
- Simple CLIENT side bypass for the Microsoft Defender for Cloud Apps Proxy☆16Apr 8, 2022Updated 3 years ago
- ☆10Oct 1, 2016Updated 9 years ago
- FIREWALL EXPLOITS COPY OF NSA EQUATION GROUP SHADOW BROKERS☆20Sep 22, 2016Updated 9 years ago
- Merge results from NMAP and Masscan into one CSV file☆18Jun 19, 2018Updated 7 years ago
- No longer maintained. Timing attacks on a browsers cache to try to predict websites/subreddits that have been viewed☆13Mar 26, 2022Updated 3 years ago
- Tool to try multiple paths for PHPunit RCE CVE-2017-9841☆29Oct 18, 2021Updated 4 years ago
- Double pulsar tool of NSA leaked by SHADOW BROKERS☆15Jun 16, 2017Updated 8 years ago
- The NSA wants access to your all your data, might as well make it easier for them to access the backend of your WordPress install. When …☆27Nov 2, 2016Updated 9 years ago
- DNS Misconfiguration : S0x4 - Same Site Scripting Scanner☆15Jan 20, 2021Updated 5 years ago
- Some personal exploits/pocs☆56Jun 2, 2020Updated 5 years ago
- Bypass AntiVirus with Python and Metasploit using shellcode☆11Mar 25, 2016Updated 9 years ago
- User-agent Fuzzing Library. This repository holds data of all the user agents in the `user_agents.json` file, which can be used directly …☆17Jun 29, 2025Updated 8 months ago
- A web shell for pivoting and lateral movement☆33Nov 29, 2017Updated 8 years ago
- AWS doesn't care enough about BlueSky to post its releases there, but I do.☆16Feb 11, 2026Updated 3 weeks ago
- Tools for assisting the reverse engineering of Qakbot☆11Jul 21, 2021Updated 4 years ago
- Scripts to extract files from SCM directories left on web servers☆36Jun 19, 2023Updated 2 years ago
- FETB : Take URL of File For Analysis using File + ExifTool + Binwalk Commands☆20Feb 2, 2021Updated 5 years ago
- ☆18Jul 26, 2019Updated 6 years ago
- ☆18Dec 27, 2019Updated 6 years ago
- NSA's IIS 6.0 exploit that creates a remote backdoor.☆19Feb 12, 2019Updated 7 years ago
- ☆39Sep 23, 2019Updated 6 years ago
- Extract relative urls from a heap snapshot☆87May 30, 2021Updated 4 years ago
- Literally spray blind xss payloads everywhere.☆26Feb 22, 2022Updated 4 years ago
- Find CVEs that don't have a Detectify modules.☆22Mar 28, 2023Updated 2 years ago
- This is a Ansible script for building a ready to go Cuckoo Sandbox server.☆26Mar 22, 2018Updated 7 years ago
- A simple Web API for resize image easily.☆24Jun 15, 2024Updated last year
- A browser bookmark to show hidden fields and enable disabled fields on a web page☆20Oct 29, 2023Updated 2 years ago
- The ORIGINAL decrypted copies of the Shadow Broker's equation_drug release. Contains Equation group's espionage DLL implants library. Use…☆26Jan 29, 2018Updated 8 years ago
- CTF write-ups 2015☆19Jun 27, 2023Updated 2 years ago
- This is a script manipulating a bug in OSX to escalate any user level process to Root privilege.☆22May 30, 2015Updated 10 years ago
- Adapt practically persistence steadiness strategies working at Windows 10 utilized by sponsored nation-state threat actors, as Turla, Pro…☆22Dec 11, 2020Updated 5 years ago
- Scripts and tools for AWS Pentest☆53Oct 22, 2020Updated 5 years ago
- Playground for Race Condition attack☆24Mar 18, 2023Updated 2 years ago
- Notes and IoCs of fresh malware☆62Jul 5, 2024Updated last year